MDN/Development/Features
< MDN | Development
Jump to navigation
Jump to search
| Priority |
Component |
Feature |
Meta bug |
Notes |
| P1 | Security | Bleach per page (tree) rules, can be edited without code push (admin tool) | ||
| P1 | Security | Cross-site scripting bug from security review, need to upgrade CKEditor to fix | ||
| P1 | Security | Way we serve file attachments right now is very insecure, need to make changes (make it more like how we do demo studio). | ||
| P1 | Security | Restrict types of files that can be uploaded, e.g. MSWord; create filetype whitelist. Images, html, txt/source files, .zip archive... | ||
| P1 | Security | We currently don't validate redirects, you can redirect to anything - need to only allow redirect within MDN, no external redirect. Need to validate redirects (scheme/host) | ||
| P1 | Localization | Ability to set Non-English as source language for translation | ||
| P1 | API | Writing API | ||
| P1 | SEO | Improvements to page title: 1) allow to edit title. 2) make title and H1 of the page different. 3)Use most specific first, e.g. animation-CSS-MDN. Use the real/full breadcrumb, such as in javascript, but able to edit manually if needed end with MDN | ||
| P1 | Dashboards | Implement Eslatic search to enable Dashboards/filtering |
| |
| P1 | Editing | Meet with Piotr about Live Examples |